Amazon cloud customers have access to more than 8,000 pre-configured Amazon Machine Images (AMIs) worldwide. That many of these AMIs contain a variety of security holes was demonstrated by Darmstadt-based researchers, who examined about 1,100 AMIs back in June. Now, a group of researchers at the EURECOM research centre in France have investigated more than half of the images that are available worldwide and identified the same vulnerabilities, as well as additional problems.

__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump